Специализация: DevOps/Sysadmin
Уровень: Middle
Опыт: 4 года
Уровень английского: Intermediate
Город: Минск
Режим работы: Полный день
Размер команды: 3—5
Размер компании: 55
Возможна удалённая работа: Да

Position: Splunk Engineer/ Splunk Administrator


  • Splunk Engineer/Administrator is needed to development and grow our Splunk environment and work with infrastructure and application teams not familiar with Splunk. This position will work closely with Infrastructure, Application, Network, Security, and Business Intelligence teams getting started with Splunk.
  • Grow and improve the enterprise Splunk environment from early stages to a mature implementation by creating forwarder apps to ingest our data
  • Assist and provide expert best practices in adoption, expansion, additional use cases and in setting up Splunk.
  • Support and guide Client resources that include Splunk Administrators, Architects, Knowledge Managers, Developers and Users for increasing Splunk adoption and overall customer success.
  • Assist with system upgrade planning and execution.
  • Assist in workshops to help leverage the full value of Splunk solutions and lead periodic stakeholder meetings.
  • Act as the Splunk liaison for Splunk technical questions, issues or escalations. This will include working with Splunk Support, Product Management (i.e. roadmaps), or others as needed.
  • Maintain current functional and technical knowledge of the Splunk platform and future products.
  • Support large-scale deployments with data feeds from multiple on premise data centers
  • Monitor and maintain Splunk performance, availability, and capacity
  • Develop reliable, efficient queries that will feed custom alerts and dashboards
  • Minimum 2+ years of experience  in one of the following areas: IT Operations, compliance, dev ops, network security, and system security, supporting security event management tools (SIEMs) 
  • Experience with scripting languages to automate tasks and manipulate data
  • Experience with integrating solutions in a multi-vendor environment, including SaaS environments
  • Knowledge of enterprise logging, with a focus on security event logging
  • Knowledge of regular expressions
  • Experience with enterprise-scale operations and maintenance environments
  • Experience with Python
  • Experience with programming a plus
  • Ability to be a Splunk language (SPL) expert
  • Splunk Certified Administrator, Splunk Certified Architect and/or Splunk Certified (employment certification possible)
  • Strong technical, analytic and problem solving skills combined with the ability to provide quick resolution to problems.
  • Strong knowledge (recent experience) with the following technology: storage, servers, data centers, and cloud.
  • Enterprise and or cloud software experience.
  • Exceptional verbal, written, organizational, presentation, and communication skills.
  • Demonstrable success in thinking strategically and executing tactically, while providing consistent and high levels of customer satisfaction and retention in a fast-paced environment.
  • Participate in user acceptance testing efforts as needed.
  • Security domain, implementation and security tools knowledge.
Missing dc2dee645480aabc67b54d291271580aa34628939fceddb02bb23fd5777d20cc
Представитель компании
Вакансии компаний